lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list] 
From: schoe at oicinc.com (Sung J. Choe)
Subject: [sean@...elan.com: Symantec detected Slamme
	r worm "hours" before]

> How can hundreds of thousands of smart people all focused on system
> administration, programming, and infosec keep missing the simplest of
> security flaws?
The same way that 100's of trained weapons inspectors in Iraq "know" that
Saddam has weapons and yet keeps missing the weapons.

.--------------------------------------------------.
| Sung J. Choe <schoe[at]oicinc.com>, TICSA        |
| Systems Administrator, Facility Security Officer |
.--------------------------------------------------.----.
                    | Oceanic Imaging Consultants, Inc. |
                    | Phone #: (808) 539-3634 x3634     |
                    .-----------------------------------.

568D CAD6 53A0 92E6 4A2A  4E87 3BA0 5F90 37BB 8EE7

> -----Original Message-----
> From: Jason Coombs [mailto:jasonc@...ence.org]
> Sent: Thursday, February 13, 2003 9:00 AM
> To: Len Rose; full-disclosure@...ts.netsys.com
> Subject: RE: [Full-Disclosure] [sean@...elan.com: Symantec detected
> Slammer worm "hours" before]
> 
> 
> Whether or not DeepSight fielded a few nibbles from Sapphire 
> before its
> first successful penetration occurred, one has to ask the 
> question "who
> cares?"
> 
> If DeepSight couldn't tell administrators that their boxes exposed a
> critical remote exploitable well-known buffer overflow 
> vulnerability then
> what good is it?
> 
> How can hundreds of thousands of smart people all focused on system
> administration, programming, and infosec keep missing the simplest of
> security flaws?
> 
> http://enterprisesecurity.symantec.com/content.cfm?articleid=1
> 985&EID=0
>   "For example, the DeepSight Threat Management System discovered the
>   Slammer worm hours before it began rapidly propagating. Symantec's
>   DeepSight Threat Management System then delivered timely alerts and
>   procedures, enabling administrators to protect against the attack
>   before their environment was compromised."
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030213/9185733d/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: schoe.vcf
Type: application/octet-stream
Size: 284 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030213/9185733d/schoe.obj

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ